Lucene search

K
ParallelsParallels Desktop*

35 matches found

CVE
CVE
added 2024/05/03 2:15 a.m.92 views

CVE-2023-27322

Parallels Desktop Service Improper Initialization Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute low-privileged code on the target host sy...

7.8CVSS7.8AI score0.00116EPSS
CVE
CVE
added 2024/06/20 8:15 p.m.91 views

CVE-2024-6154

Parallels Desktop Toolgate Heap-based Buffer Overflow Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target gu...

8.2CVSS7.6AI score0.00038EPSS
CVE
CVE
added 2024/05/03 3:16 a.m.75 views

CVE-2023-50226

Parallels Desktop Updater Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute low-privileged code on the target host system in o...

7.8CVSS7.8AI score0.00281EPSS
CVE
CVE
added 2024/06/21 2:15 p.m.70 views

CVE-2024-6240

Improper privilege management vulnerability in Parallels Desktop Software, which affects versions earlier than 19.3.0. An attacker could add malicious code in a script and populate the BASH_ENV environment variable with the path to the malicious script, executing on application startup. An attacker...

10CVSS7.9AI score0.00098EPSS
CVE
CVE
added 2024/05/03 2:15 a.m.62 views

CVE-2023-27327

Parallels Desktop Toolgate Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target gue...

7.5CVSS7.8AI score0.00059EPSS
CVE
CVE
added 2007/05/02 5:19 p.m.60 views

CVE-2007-2455

Parallels allows local users to cause a denial of service (virtual machine abort) via (1) certain INT instructions, as demonstrated by INT 0xAA; (2) an IRET instruction when an invalid address is at the top of the stack; (3) a malformed MOVNTI instruction, as demonstrated by using a register as a d...

6.1CVSS6.4AI score0.00225EPSS
CVE
CVE
added 2020/08/25 9:15 p.m.59 views

CVE-2020-17395

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.4. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the pr...

8.2CVSS8.2AI score0.00109EPSS
CVE
CVE
added 2024/05/03 3:16 a.m.59 views

CVE-2023-50227

Parallels Desktop virtio-gpu Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Parallels Desktop. User interaction is required to exploit this vulnerability in that the target in a guest system ...

8.3CVSS8.7AI score0.02794EPSS
CVE
CVE
added 2024/05/03 2:15 a.m.57 views

CVE-2023-27324

Parallels Desktop Updater Improper Initialization Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute low-privileged code on the target host sy...

7.8CVSS7.9AI score0.00116EPSS
CVE
CVE
added 2024/05/03 2:15 a.m.55 views

CVE-2023-27326

Parallels Desktop Toolgate Directory Traversal Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target guest sys...

8.2CVSS8.3AI score0.02771EPSS
CVE
CVE
added 2024/05/03 2:15 a.m.55 views

CVE-2023-27328

Parallels Desktop Toolgate XML Injection Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute low-privileged code on the target guest system in ...

7.8CVSS7.9AI score0.00209EPSS
CVE
CVE
added 2024/06/20 8:15 p.m.55 views

CVE-2024-6153

Parallels Desktop Updater Protection Mechanism Failure Software Downgrade Vulnerability. This vulnerability allows local attackers to downgrade Parallels software on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute low-privileged code on the target h...

7.8CVSS7.5AI score0.00043EPSS
CVE
CVE
added 2024/05/03 3:16 a.m.54 views

CVE-2023-50228

Parallels Desktop Updater Improper Verification of Cryptographic Signature Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute low-privileged c...

7.8CVSS7.8AI score0.00049EPSS
CVE
CVE
added 2020/08/25 9:15 p.m.53 views

CVE-2020-17399

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.4. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the prl_hyper...

8.8CVSS8.7AI score0.00099EPSS
CVE
CVE
added 2020/08/25 9:15 p.m.51 views

CVE-2020-17398

This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.4. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the prl_hype...

6.5CVSS6.1AI score0.0009EPSS
CVE
CVE
added 2020/08/25 9:15 p.m.50 views

CVE-2020-17402

This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.4 (47270). An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists w...

6.5CVSS6.3AI score0.0006EPSS
CVE
CVE
added 2020/08/25 9:15 p.m.48 views

CVE-2020-17397

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.4. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the ha...

8.2CVSS8.3AI score0.00109EPSS
CVE
CVE
added 2020/08/25 9:15 p.m.48 views

CVE-2020-17400

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.4. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the prl_hyper...

8.8CVSS8.6AI score0.00099EPSS
CVE
CVE
added 2020/08/25 9:15 p.m.47 views

CVE-2020-17401

This vulnerability allows local attackers to disclose sensitive informations on affected installations of Parallels Desktop 15.1.4. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists w...

6CVSS5.8AI score0.00087EPSS
CVE
CVE
added 2020/03/23 6:15 p.m.47 views

CVE-2020-8871

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.0-47107 . An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...

8.2CVSS6.6AI score0.0013EPSS
CVE
CVE
added 2020/08/25 9:15 p.m.46 views

CVE-2020-17390

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.2-47123. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the hyp...

8.8CVSS8.4AI score0.00084EPSS
CVE
CVE
added 2020/08/25 9:15 p.m.46 views

CVE-2020-17396

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.4. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the prl_hyper...

8.8CVSS8.7AI score0.00099EPSS
CVE
CVE
added 2007/05/02 5:19 p.m.45 views

CVE-2007-2454

Heap-based buffer overflow in the VGA device in Parallels allows local users, with root access to the guest operating system, to terminate the virtual machine and possibly execute arbitrary code in the host operating system via unspecified vectors related to bitblt operations.

6.8CVSS7.7AI score0.00191EPSS
CVE
CVE
added 2020/08/25 9:15 p.m.45 views

CVE-2020-17393

This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.3-47255. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the pr...

6.5CVSS6.2AI score0.0009EPSS
CVE
CVE
added 2024/05/03 2:15 a.m.45 views

CVE-2023-27323

Parallels Desktop Updater Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute low-privileged code on the target host ...

7.8CVSS7.8AI score0.00092EPSS
CVE
CVE
added 2024/05/03 2:15 a.m.45 views

CVE-2023-27325

Parallels Desktop Updater Improper Initialization Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute low-privileged code on the target host sy...

7.8CVSS7.9AI score0.00116EPSS
CVE
CVE
added 2020/08/25 9:15 p.m.44 views

CVE-2020-17391

This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.3-47255. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the ha...

6.5CVSS6.3AI score0.0009EPSS
CVE
CVE
added 2020/08/25 9:15 p.m.41 views

CVE-2020-17392

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.3-47255. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the han...

8.8CVSS8.6AI score0.00099EPSS
CVE
CVE
added 2020/08/25 9:15 p.m.41 views

CVE-2020-17394

This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.4. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists wi...

6CVSS5.7AI score0.00087EPSS
CVE
CVE
added 2020/03/23 6:15 p.m.39 views

CVE-2020-8873

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.2-47123. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within ...

8.2CVSS6.6AI score0.00089EPSS
CVE
CVE
added 2007/03/02 10:19 p.m.38 views

CVE-2007-1222

Parallels Desktop for Mac before 20070216 implements Drag and Drop by sharing the entire host filesystem as the .psf share, which allows local users of the guest operating system to write arbitrary files to the host filesystem, and execute arbitrary code via launchd by writing a plist file to a Lau...

7.2CVSS7.3AI score0.00054EPSS
CVE
CVE
added 2020/03/23 6:15 p.m.38 views

CVE-2020-8876

This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.2-47123. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the IO...

6.5CVSS5.3AI score0.00094EPSS
CVE
CVE
added 2020/03/23 6:15 p.m.37 views

CVE-2020-8875

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.2-47123. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the IOC...

8.8CVSS8.7AI score0.00116EPSS
CVE
CVE
added 2020/03/23 6:15 p.m.34 views

CVE-2020-8874

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.2-47123. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within ...

7.5CVSS6.7AI score0.00124EPSS
CVE
CVE
added 2020/03/23 6:15 p.m.33 views

CVE-2020-8872

This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.1-47117. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exi...

6CVSS4.1AI score0.00095EPSS